Y
Hacker News
new
|
ask
|
show
|
jobs
by
NicolaiS
1636 days ago
"Log4j2 versions 2.0-beta7 through 2.17.0 are vulnerable to a remote code execution attack
if an attacker with permission to modify the logging configuration file
can construct a malicious configuration"